[rbak-nsp] NAT configuration
Piotrek S.
komuch at gmail.com
Mon Feb 25 14:20:29 EST 2013
Thanks, it works good :)
2013/2/19 Daniel Celiński <daniel.02c at gmail.com>
> Try something like that:
>
>
> ip nat pool nat-pool1 napt multibind
> address a.b.c.1/32 port-block 1 to 15
>
> ip nat pool nat-pool2 napt multibind
> address a.b.c.2/32 port-block 1 to 15
>
> policy access-list pacl-nat
> seq 10 permit ip any <dst net1 of your customers network> class customers
> seq 20 permit ip any <dst net2 of your customers network> class customers
> seq 100 permit ip any any class internet
>
> nat policy nat-policy1
> access-group pacl-nat
> class internet
> pool pool1 bras
> timeout tcp 18000
> endpoint-independent filtering udp
> class customers
> ignore
>
> nat policy nat-policy2
> access-group pacl-nat
> class internet
> pool pool2 bras
> timeout tcp 18000
> endpoint-independent filtering udp
> class customers
> ignore
>
> In policy acl "pacl-nat" you include all your customers networks.
> From radius you can return nat policy names: "nat-policy1" or "nat-policy2"
>
>
> --
> Daniel
> _______________________________________________
> redback-nsp mailing list
> redback-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/redback-nsp
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://puck.nether.net/pipermail/redback-nsp/attachments/20130225/7fc3da29/attachment.html>
More information about the redback-nsp
mailing list